A security issue was discovered in Kubernetes where a user that can create pods on Windows nodes running kubernetes-csi-proxy may be able to escalate to admin privileges on those nodes. Kubernetes clusters are only affected if they include Windows nodes running kubernetes-csi-proxy.
| Package (Ecosystem) | Introduced | Fixed | Limit |
|---|---|---|---|
| github.com/kubernetes-csi/csi-proxy/v2(Go) | 2.0.0-alpha.0 | 2.0.0-alpha.1 | N/A |
| github.com/kubernetes-csi/csi-proxy(Go) | 0.1.0-rc1 | 1.1.3 | N/A |
| github.com/kubernetes-csi/csi-proxy(Go) | 0 | 0.0.0-20230821192013-2523e6674ded | N/A |
| github.com/kubernetes-csi/csi-proxy(Go) | 1.1.3-0 | 1.1.3-0.20230821192013-2523e6674ded | N/A |
CVSS Metrics
